baref00t.io

// packs / entra-hardening

Entra ID / Identity Hardening Pack

Global

Identity Pack | Global

Deep-dive into your identity attack surface — the #1 breach vector. Six dimensions covering every aspect of your Entra ID configuration, from MFA coverage to app registration hygiene.

One-off
$349

Single report, no commitment.

Monthly
$229/month

Continuous monitoring — fresh report every 30 days.

Available in AUD, USD, GBP, EUR, SGD. MSP partners get volume discounts via the partner programme.

What it scores

EH1

MFA coverage

per-user status, phishing-resistant enforcement, auth methods

EH2

Conditional Access gap analysis across users, apps, and platforms

EH3

Privileged role hygiene

GA count, PIM adoption, standing vs eligible

EH4

App registration audit

expired secrets, excessive permissions, unused apps

EH5

Guest access exposure

stale guests, invite settings, B2B policy

EH6

Risk policy effectiveness

Identity Protection, Secure Score, alert review

Microsoft APIs

  • Microsoft Graph (universal scopes, read-only across the tenant)
  • Azure REST (when the product reads Azure subscription posture)
  • Defender + Intune APIs where applicable

Customer prerequisites

  • Microsoft 365 tenant with admin-consent capability
  • Global Reader or equivalent for the consenting admin
  • No agent installs, no infrastructure changes required
  • Report delivered by email within 10 minutes of consent

Other Packs

email-security
Email Security Pack

Full email attack surface analysis — spoofing, phishing, data leakage, and mail flow hygiene across your Microsoft 365 t

sharepoint-oversharing
SharePoint & Data Oversharing Pack

Find where your sensitive data is exposed right now — misconfigured sharing, labelling gaps, guest sprawl, and excessive

finance
Finance / Fintech Security Pack

Fraud controls, privileged access, data integrity, and regulatory evidence readiness for financial services organisation

See all Security & Industry Packs